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7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) D The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 
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DETAILED ACTION 

Continued Examination Under 37 CFR 1.114 

1 . A request for continued examination under 37 CFR 1 . 1 1 4, including the fee set 
forth in 37 CFR 1.17(e), was filed in this application after final rejection. Since this 
application is eligible for continued examination under 37 CFR 1.114, and the fee set 
forth in 37 CFR 1.17(e) has been timely paid, the finality of the previous Office action 
has been withdrawn pursuant to 37 CFR 1.114. Applicant's submission filed on January 
20, 2006 has been entered. 

Claim Rejections - 35 (JSC § 103 

2. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

3. Claims 22-27 are rejected under 35 U.S.C. 1 03(a) as being unpatentable over 
Liu, U.S. Patent No. 6,079,020 (hereinafter Liu), in view of Larson et al., U.S. Patent 
Application Publication No. 2004/0107286 (hereinafter Larson). 

4. With respect to claim 22, Liu teaches a method practiced at a network interface 
unit (NIU) directly connected to at least one local area network (LAN), said NIU also 
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being connected to a non-secure node of a second network, which second network is in 
packet communication with at least one access node of a secure virtual private network 
(VPN) [figs. 1-2 and see abstract], the method comprising: 

■ receiving data packets from at least one device on said at least one LAN 
[210], 

■ multiplexing said data packets into at least one packet data stream [col. 7, 
lns.8-67], 

■ modifying said packet data streams in a security server in said NIU in 
accordance with a secure communication protocol by encrypting packets in 
said data streams and encapsulating resulting encrypted packets [240]. 

However, Liu does not explicitly show providing network destination address 
information from a Domain Name System (DNS) server for at least selected ones of 
said data streams. 

In a method for establishing secure communication, Larson discloses providing 
network destination address information from a DNS server for at least selected ones of 
said data streams [paragraphs 0024, 0225, 0260-0268]. 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time of the invention was made to modify Liu in view of Larson by providing network 
destination address information from a DNS server for at least selected ones of said 
data streams because this feature is enabled at a first computer without a user entering 
any cryptographic information for establishing the secure communication mode of 
communication [Larson, see abstract]. It is for this reason that one of ordinary skill in 
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the art at the time of the invention would have been motivated in order to automatically 
create of a VPN in response to a DNS server look-up function [Larson t paragraph 
0261]. 

5. With respect to claim 23, Liu is silent on said modifying said packet data streams 
in a security server comprises modifying said packet streams in an IPsec server. 

In a virtual private network, Larson discloses said modifying said packet data 
streams in a security server comprises modifying said packet streams in an IPsec 
server [paragraph 0285]. 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time of the invention was made to modify Liu in view of Larson by modifying said packet 
streams in an IPsec server because this feature is enabled at a first computer without a 
user entering any cryptographic information for establishing the secure communication 
mode of communication [Larson, see abstract]. It is for this reason that one of ordinary 
skill in the art at the time of the invention would have been motivated in order to 
automatically create of a VPN in response to a DNS server look-up function [Larson, 
paragraph 0261]. 

6. With respect to claim 24, Liu further teaches a method comprising: 

■ receiving at least one stream of data packets from said non-secure network 
[300 and 310], 
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■ filtering out packets in said streams of received packets that are not from said 
VPN network, said filtering being performed by a firewall in said security 
server [320], 

■ modifying said packets in said at least one stream by decrypting said packets 
in said at least one received data stream and decapsulating resulting 
decrypted packets, said decrypting and decapsulating being performed by 
said security server [340], 

■ demultiplexing said at least one stream of received data packets to form at 
least one demultiplexed stream of data packets for delivery to said at least 
one LAN [350]. 

7. With respect to claim 25, Liu further teaches authenticating client devices on said 
at least one LAN, and wherein packets from authenticated client devices on said at least 
one LAN that are received at said network interface device are processed as packets 
received from said VPN [col. 3, Ins. 1-61]. 

8. With respect to claim 26, Liu further teaches wherein said non-secure node of a 
second network is part of said NIU [131]. 

9. With respect to claim 27, Liu further teaches wherein said at least selected ones 
of said at least one packet data stream are applied to said non-secure node of said 
second network [fig. 1 ]. 
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Response to Arguments 

12. Applicants arguments with respect to claims 22-27 have been considered but are 
moot in view of the new ground(s) of rejection. 

Conclusion 

14. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Nghi V. Tran whose telephone number is (571) 272- 
4067. The examiner can normally be reached on Monday-Friday. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Zarni Maung can be reached on (571) 272-3939. The fax phone number for 
the organization where this application or proceeding is assigned is (571) 273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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